summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Expand)Author
2016-06-30bump to 2.4.2Brent Cook
2016-06-30Remove flags for disabling constant-time operations.Brent Cook
2016-06-25Fix from kinichiro.inoguchi@gmail.com to ensure that OCSP usesBob Beck
2016-06-25Fix the ocsp code to actually check for errors when comparing time valuesBob Beck
2016-06-21Disable DSA_FLAG_NO_EXP_CONSTTIME, always enable constant-time behavior.Brent Cook
2016-06-06Set BN_FLG_CONSTTIME on the correct variable. beck committed wrong fix.Ted Unangst
2016-06-06Correct a problem that prevents the DSA signing algorithm from runningBob Beck
2016-06-06LibreSSL 2.4.1Brent Cook
2016-05-30deprecate internal use of EVP_[Cipher|Encrypt|Decrypt]_Final.Bob Beck
2016-05-20Fix a short-read bug in the previous version of asn1_d2i_read_bioBrent Cook
2016-05-04fix for integer overflow in encode and encrypt update functions.Ted Unangst
2016-05-04fix a padding oracle in aesni cbc mac check. there must be enough dataTed Unangst
2016-05-04internal only negative types should not be handled here.Ted Unangst
2016-05-04be careful about consuming excessive memory by reading in chunks.Ted Unangst
2016-05-04revert the big change from yesterday to prepare for smaller commits.Ted Unangst
2016-05-03prefer limits.h over sys/limits.hBrent Cook
2016-05-03patch from openssl for multiple issues:Ted Unangst
2016-04-28Crank majors for lib{crypto,ssl,tls} due to symbol removals, symbolJoel Sing
2016-04-28don't go into an unbreakable infinite loop during operations suchTed Unangst
2016-04-28Implement the IETF ChaCha20-Poly1305 cipher suites.Joel Sing
2016-04-28Rename EVP_aead_chacha20_poly1305() to EVP_aead_chacha20_poly1305_old()Joel Sing
2016-04-13Use the correct iv and counter when decrypting the ciphertext forJoel Sing
2016-03-30for some time now mandoc has not required MLINKS to functionJason McIntyre
2016-03-27Merge a memleak fix from BoringSSL 6b6e0b2:Michael McConville
2016-03-21Return zero from two functions on allocation failure instead of alwaysmmcc
2016-03-20" the the " -> " the ", or in a couple of cases replace the superfluousKenneth R Westerback
2016-03-17explicit_bzero for asn1 objects on free. Too often these contain sensitive in...Bob Beck
2016-03-15'accomodate' -> 'accommodate' in comments.Kenneth R Westerback
2016-03-13Fix examples for EVP_PKEY_CTX_set_rsa_padding.Brent Cook
2016-03-12Add error handling to the remaining calls to bn_wexpand().Brent Cook
2016-03-12Remove sentences in RETURN VALUES sections saying that functions withmmcc
2016-03-12Bump for LibreSSL 2.4.0Brent Cook
2003-05-11import 0.9.7b (without idea and rc5)Markus Friedl
2016-03-11X509_free(3) is NULL-safe, so remove NULL checks before its calls.mmcc
2016-03-10http -> https for a few more IETF URLs in comments or man pagesmmcc
2016-03-07http -> https for IETF/IANA URLs in commentsmmcc
2016-03-06explict_bzero for some asn1 free's - ok miod@Bob Beck
2016-03-06Make sure stdio functions don't end up in the library, from miod@Bob Beck
2016-03-04graduate bn_expand() to a real function. the openssl version of thisTheo de Raadt
2016-03-04Revert bn_expand until there's consensus on a fix.Doug Hogan
2016-03-02fix the rest of the read_ledword() calls used as lengths to be bounded.Bob Beck
2016-03-02Add bounds checking for BN_hex2bn/BN_dec2bn.Doug Hogan
2016-03-02bound lengths coming out of a pem file to something like realityBob Beck
2016-03-01Remove support for ancient, broken DSA implementations.Doug Hogan
2016-02-29remove NULL checks for pqueue_free()mmcc
2016-01-29Therefor -> Therefore (where appropriate)tb
2016-01-27deprecate SSL_OP_SINGLE_DH_USEBob Beck
2015-12-30Document that the ssl free() functions are NULL safe. OK mmcc@Todd C. Miller
2015-12-24More adress -> addressmmcc
2008-09-06import of OpenSSL 0.9.8hDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-30 12:27:15 +0000